{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2019-25626", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-03-24T10:59:35.100Z", "datePublished": "2026-03-24T11:27:01.129Z", "dateUpdated": "2026-03-26T12:38:04.674Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-24T11:27:01.129Z"}, "datePublic": "2019-04-07T00:00:00.000Z", "title": "River Past Cam Do 3.7.6 Local Buffer Overflow in Activation Code", "descriptions": [{"lang": "en", "value": "River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and SEH chain overwrite values to trigger code execution when the activation dialog processes the input."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Unrestricted Upload of File with Dangerous Type", "cweId": "CWE-434", "type": "CWE"}]}], "affected": [{"vendor": "Flexhex", "product": "River Past Cam Do", "versions": [{"version": "3.7.6", "status": "affected"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 8.6, "baseSeverity": "HIGH", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS"}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS"}], "references": [{"url": "https://www.exploit-db.com/exploits/46670", "name": "ExploitDB-46670", "tags": ["exploit"]}, {"url": "http://www.flexhex.com", "name": "Official Product Homepage", "tags": ["product"]}, {"url": "https://en.softonic.com/download/river-past-cam-do/windows/post-download?sl=1", "name": "Product Reference", "tags": ["product"]}, {"name": "VulnCheck Advisory: River Past Cam Do 3.7.6 Local Buffer Overflow in Activation Code", "tags": ["third-party-advisory"], "url": "https://www.vulncheck.com/advisories/river-past-cam-do-local-buffer-overflow-in-activation-code"}], "credits": [{"lang": "en", "value": "Chris Au", "type": "finder"}], "x_generator": {"engine": "vulncheck"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-26T12:37:54.371163Z", "id": "CVE-2019-25626", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-26T12:38:04.674Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2019-25626", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-26T12:37:54.371163Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-26T12:37:59.837Z"}}], "cna": {"title": "River Past Cam Do 3.7.6 Local Buffer Overflow in Activation Code", "credits": [{"lang": "en", "type": "finder", "value": "Chris Au"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.6, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "Flexhex", "product": "River Past Cam Do", "versions": [{"status": "affected", "version": "3.7.6"}]}], "datePublic": "2019-04-07T00:00:00.000Z", "references": [{"url": "https://www.exploit-db.com/exploits/46670", "name": "ExploitDB-46670", "tags": ["exploit"]}, {"url": "http://www.flexhex.com", "name": "Official Product Homepage", "tags": ["product"]}, {"url": "https://en.softonic.com/download/river-past-cam-do/windows/post-download?sl=1", "name": "Product Reference", "tags": ["product"]}, {"url": "https://www.vulncheck.com/advisories/river-past-cam-do-local-buffer-overflow-in-activation-code", "name": "VulnCheck Advisory: River Past Cam Do 3.7.6 Local Buffer Overflow in Activation Code", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "vulncheck"}, "descriptions": [{"lang": "en", "value": "River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and SEH chain overwrite values to trigger code execution when the activation dialog processes the input."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "Unrestricted Upload of File with Dangerous Type"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-24T11:27:01.129Z"}}}, "cveMetadata": {"cveId": "CVE-2019-25626", "state": "PUBLISHED", "dateUpdated": "2026-03-26T12:38:04.674Z", "dateReserved": "2026-03-24T10:59:35.100Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-03-24T11:27:01.129Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:river_past_cam_do_project:river_past_cam_do:*:*:*:*:*:*:*:*", "matchCriteriaId": "0F77BF19-B6F5-4FF7-940D-91DAFC646994", "versionEndIncluding": "3.7.6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and SEH chain overwrite values to trigger code execution when the activation dialog processes the input."}, {"lang": "es", "value": "River Past Cam Do 3.7.6 contiene una vulnerabilidad local de desbordamiento de b\u00fafer en el campo de entrada del c\u00f3digo de activaci\u00f3n que permite a atacantes locales ejecutar c\u00f3digo arbitrario al proporcionar una cadena de c\u00f3digo de activaci\u00f3n maliciosa. Los atacantes pueden crear un b\u00fafer que contenga 608 bytes de datos basura seguidos de shellcode y valores de sobrescritura de la cadena SEH para desencadenar la ejecuci\u00f3n de c\u00f3digo cuando el di\u00e1logo de activaci\u00f3n procesa la entrada."}], "id": "CVE-2019-25626", "lastModified": "2026-04-27T13:35:16.957", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.9, "source": "disclosure@vulncheck.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-03-24T12:16:02.230", "references": [{"source": "disclosure@vulncheck.com", "tags": ["Not Applicable"], "url": "http://www.flexhex.com"}, {"source": "disclosure@vulncheck.com", "tags": ["Product"], "url": "https://en.softonic.com/download/river-past-cam-do/windows/post-download?sl=1"}, {"source": "disclosure@vulncheck.com", "tags": ["Exploit", "VDB Entry"], "url": "https://www.exploit-db.com/exploits/46670"}, {"source": "disclosure@vulncheck.com", "tags": ["Third Party Advisory"], "url": "https://www.vulncheck.com/advisories/river-past-cam-do-local-buffer-overflow-in-activation-code"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "disclosure@vulncheck.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.7.6"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "River Past Cam Do", "source": "cna", "vendor": "Flexhex"}, "product": "river_past_cam_do", "vendor": "flexhex"}], "analysis": {"en": {"generated_at": "2026-03-24T12:53:52.519623+00:00", "value": {"mitigation_remediation": ["Apply the vendor\u2019s patch or upgrade to a version newer than 3.7.6 that fixes the buffer overflow.", "If no patch is available, uninstall or prevent the application from running, especially on accounts with administrative privileges.", "Restrict or disable user accounts that can launch the vulnerable program to reduce exposure.", "Monitor system logs for unexpected activation dialog activity or abnormal SEH chain changes that may indicate an attempted exploitation."], "summary": {"action": "Immediate Patch", "impact": "Local Code Execution"}, "threat_synthesis": {"affected_systems": "Flexhex River Past Cam Do version 3.7.6 is vulnerable to the described buffer overflow; any installation of this version must be patched, updated, or removed to prevent exploitation.", "description_and_impact": "River Past Cam Do 3.7.6 includes a local buffer overflow in the activation code input field, allowing local attackers to supply a malicious string that overflows a fixed\u2011size buffer and redirects execution to attacker\u2011provided shellcode. The exploit requires the attacker to interact with the activation dialog, providing a payload of 608 bytes followed by shellcode and overwritten SEH values, resulting in arbitrary code execution with the privileges of the running process.", "risk_and_exploitability": "The CVSS score of 8.6 denotes high severity, while no EPSS data and no KEV listing mean the exploit probability is unknown. The vulnerability is local in nature, requiring attacker presence on the machine and interaction with the activation dialog, so the attack vector is local with a substantial potential impact if exploited."}}}}, "created": "2026-03-25T11:48:49.099165+00:00", "updated": "2026-03-25T20:39:44.285541+00:00", "vendors": ["flexhex", "flexhex$PRODUCT$river_past_cam_do"]}